Subscription to the full report on a daily basis can be obtained:
Send an eMail to dhsdailyadmin@mail.dhs.osis.gov with the subject "DHS Daily Open Source Infrastructure Report" and the following line in the body...subscribe.
To obtain a complete copy of the current report proceed to the DHS link below.
To obtain reports more than 10 business days old, send an eMail to DHS_Reports@e-computer-security.com. Be specific as to the reports you wish to receive.

· Part of the northbound 215 Freeway in Perris, California, was closed July 15 and expected to be closed into July 16 after a semi-truck hit a bridge at the interchange with State Route 74, causing a partial collapse of the bridge. – KTLA 5 Los Angeles

13. July 15, KTLA 5 Los Angeles – (California) Traffic snarled after big rig crash causes bridge collapse on 215 freeway. Part of the northbound 215 Freeway in Perris was closed July 15 and expected to be closed into July 16 after a semi-truck hit a bridge at the interchange with State Route 74, causing a partial collapse of the bridge. Southbound lanes were also closed for a time during the repair work. Source: http://ktla.com/2014/07/15/215-freeway-partially-shut-down-in-perris-after-big-rig-crashes-into-bridge/

· California water regulators approved fines July 15 of up to $500 a day for wasteful outdoor water use after previous conservation measures failed to achieve a targeted reduction in water use amid the State's continuing drought. – Associated Press

18.July 15, Associated Press – (California) California approves fines for water wasters. California water regulators approved fines July 15 of up to $500 a day for wasteful outdoor watering after previous conservation measures failed to achieve a targeted reduction in water use amid the State's continuing drought. The new regulation will begin to take place in early August. Source: http://news.msn.com/us/california-approves-fines-for-water-wasters

· The University of Louisiana at Lafayette evacuated its campus and canceled all classes and events July 16 due to a bomb threat investigation in which police found two suspicious devices. – Lafayette Daily Advertiser

20.July 16, Lafayette Daily Advertiser – (Louisiana) Search continues for possible explosives on UL campus. The University of Louisiana at Lafayette evacuated its campus and cancelled all classes and events July 16 due to a bomb threat that was called into a local news station. Police conducted a search of the campus and found two suspicious devices, while residents were taken off-campus and two nearby businesses were also evacuated. Source: http://www.theadvertiser.com/story/news/local/2014/07/16/ul-evacuated-due-bomb-threat/12722833/?sf28594632

· Oracle released its Critical Patch Update for July, which includes patches for 113 security vulnerabilities in various Oracle products, including 20 remotely exploitable vulnerabilities in Java. – Securityweek See item 26below in the Information Technology Sector

9.July 15, WHIO 7 Dayton – (Ohio) FBI offering reward for 'Buckeye Bandit' bank robber. The FBI offered a reward for information relating to a suspect known as the "Buckeye Bandit", believed to be responsible for at least 16 bank robberies in the Columbus area, as well as 3 robberies at a pharmacy. The most recent bank robbery linked to the suspect occurred July 9 at a SMART Federal Credit Union branch in Columbus. Source: http://www.whio.com/news/news/crime-law/fbi-offering-reward-buckeye-bandit-bank-robber/nggNm/

10. July 15, Orange County Register – (California) Anaheim police seek 'Quad Bandit' in bank robberies. Authorities believe that the man who robbed an Opus Bank branch July 15 in Anaheim may be the suspect known as the "Quad Bandit" who is thought responsible for bank robberies and attempted bank robberies in Buena Park, La Habra, and Cerritos. Source: http://www.ocregister.com/articles/quad-628985-bank-anaheim.html

Information Technology Sector

26.July 16, Securityweek – (International) Oracle patches 13 vulnerabilities, including 20 in Java. Oracle released its Critical Patch Update for July, which includes patches for 113 security vulnerabilities in various Oracle products, including 20 vulnerabilities in Java SE. The 20 vulnerabilities in Java can all be remotely exploited without authentication and users were advised to apply the updates as soon as possible. Source: http://www.securityweek.com/oracle-patches-113-vulnerabilities-including-20-java

27.July 16, Softpedia – (International) vBulletin exploitable through SQL injection. Members of the Romanian Security Team group identified and reported an SQL injection vulnerability in vBulletin which could be used by attackers to gain access to a forum's administration panel and databases. The group reported the vulnerability to the developers of vBulletin and stated that they would disclose the full details of the issue once a fix is released. Source: http://news.softpedia.com/news/vBulletin-Exploitable-Through-SQL-Injection-450894.shtml

28. July 16, Securityweek – (International) OpenBSD downplays PRNG vulnerability in LibreSSL. A researcher with Opsmate reported finding a flaw in the pseudorandom number generator (PRNG) in LibreSSL for Linux. Representatives of the OpenBSD Project confirmed that the issue exists but stated that the now-fixed problem was unlikely to be exploitable in real world conditions. Source: http://www.securityweek.com/openbsd-downplays-prng-vulnerability-libressl

Links

About Me

U.S. Army Retired Chief Warrant Officer with more than 40 years in information technology and 35 years in information security. Became a Certified Information Systems Security Professional in 1995 and have taught computer security in Asia, Canada and the United States. Wrote a computer security column for 5 years in the 1980s titled "for the Sake Of Security", penname R. E. (Bob) Johnston, which was published in Computer Decisions.
Motto: "When entrusted to process, you are obligated to safeguard"